Microsoft Intune Policies For Samsung Knox Enabled Devices

While delivering last week’s CANITPRO Business Mobility Camp in Calgary, a question was brought forth in regards to what specific policies can be enforced on A Samsung KNOX enabled device via Microsoft Intune. For those unaware, Samsung’s KNOX offering is additional software & hardware hardened security enabled above and beyond the traditional Android stack.

Microsoft recently furthered the support for securing and managing KNOX enabled devices. The following list is the complete policy set offered as of this writing.

Email Profiles – IT Professionals can now create, deploy and monitor Exchange ActiveSync email settings on KNOX enabled devices. This allows end user access of corporate email without the requirement of further setup

Password Enablement – The ability to assign type, minimum length, complexity, number of repeated sign-in failures before wiping, minutes of inactivity before the screen turns off, password expiration, password history & its prevented use

Encryption – Can be enabled on both onboard storage and inserted storage cards